CVE-2021-44832: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
(updated )
This advisory has been marked as a false positive.
References
- www.openwall.com/lists/oss-security/2021/12/28/1
- cert-portal.siemens.com/productcert/pdf/ssa-784507.pdf
- github.com/advisories/GHSA-8489-44mv-ggj8
- issues.apache.org/jira/browse/LOG4J2-3293
- lists.apache.org/thread/s1o5vlo78ypqxnzn6p8zf6t9shtq5143
- lists.debian.org/debian-lts-announce/2021/12/msg00036.html
- nvd.nist.gov/vuln/detail/CVE-2021-44832
- www.oracle.com/security-alerts/cpujan2022.html
Detect and mitigate CVE-2021-44832 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →